Cyber update

Govt acts on online misinformation on Operation Sindoor infra, banks on cyber threat alert

The government has ramped up efforts to counter misinformation about Operation Sindoor and placed key infrastructure sectors on high cyber alert following recent terror-linked cyberattacks. Social media platforms are being monitored, with false content actively blocked and users urged to rely on official sources. According to a senior government source, social media platforms are “continually monitoring” for false information about Operation Sindoor by the ministries of information technology and information and broadcasting. These platforms have been requested to block any illegal content. Critical infrastructure agencies and organisations, including the Power Ministry, banks, telecom providers, and other financial institutions, are also on “high alert” after being the target of multiple cyberattacks in the wake of last month’s Amalgam terror incident. “We have contained the DDoS attacks that have been launched against certain infrastructure. We are currently on high alert since similar attempts will undoubtedly be attempted,” the person stated. An assault known as a DDoS (Distributed Denial of Service) occurs when a hacker floods a server, network, or website with malicious traffic from several sources, rendering it unusable or sluggish for authorised users. At a conference between representatives of the two ministries on May 7, 2025, in the afternoon, it was acknowledged that false information about India’s strikes on nine locations in Pakistan and Pakistan-occupied Kashmir (Pok) was widely disseminated on social media sites like X. Since people were making a variety of claims online, it was determined that the government would need to keep a careful eye on such content and use its legal tools to stop its spread. From images of unrelated strikes to video game footage, social media platforms turned into a battlefield for internet disinformation campaigns starting in the early hours of May 7. Online reports that Pakistan shot down an Indian Rafael jet were reportedly accompanied by images of a downed aircraft. The fact-check unit of the Press Information Bureau (PIB) has stated that the images were outdated. Other widely circulated accusations about the airstrikes have also been verified by the unit. Users of social media platforms have been cautioned by the authorities to use caution. “Avoid sharing or relying on unconfirmed information. For factual information, see the Government of India’s official sources,” the IT Ministry stated in several posts on X. 16 Pakistani YouTube channels, including well-known ones like Dawn News, Samaa TV, Ary News, and Geo News, were banned by the government following the Pahalgam terror incident for spreading misleading information and content that was sensitive to the community.

Fake News Alert: Operation Sindoor – Your Responsibility, Our Nation’s Safety

India has conducted a strong military operation, “Operation Sindoor,” targeting terrorist bases in Pakistan. As soon as this news broke, social media platforms were flooded with real, fake posts, and others purely for attention. In times like these, the biggest support you can give your country is by sharing only verified and responsible information. What You Should NOT Do Don’t Share Fake or Unverified News: Many pages and channels post edited, misleading, or completely fake news for views and likes. Sharing such content without verification can endanger national security. Never Share Army Movements or Sensitive Videos: Posting or forwarding pictures/videos of our Armed Forces’ real-time movements or locations is a serious breach of security. Your post might unintentionally aid the enemy. Don’t Spread Rumours, Memes, or Jokes About Attacks: Making fun or spreading baseless gossip during such tense times is not only insensitive, but it also contributes to disinformation. What You SHOULD Do Follow Only Official Sources: Trust information from official government handles (PIB, Ministry of Defence), verified news channels, and authorised press releases. Think Before You Share: If a post lacks source credibility or seems emotionally manipulative, don’t forward it. Report Fake News: If you come across misleading or provocative content, report it on the platform. While our soldiers are fighting on the front lines, we must become digital soldiers by standing for truth and acting wisely. Make your posts strengthen the nation, not weaken it. Civil Defence Drill to Boost Emergency Readiness: Do not post any objectionable post or make any wrong comments on social media regarding the mock drill. Do not spread any misleading false rumours on social media. A civil defence mock drill will be conducted across the country on May 7 to enhance emergency preparedness after the Pahalgam terror attack. The drill will test air raid warning systems, shelter preparedness and evacuation procedures. Civil defence volunteers, including NCC cadets, home guards and students, will participate in the simulation to remain prepared for hostile situations. The drill aims to strengthen civil defence preparedness and train volunteers in first aid, evacuation and emergency protocols. Verify before you post. Think before you share.

Govt. Mulls Ban on Influencers Spreading Anti-National Content Post-Pahalgam Attack

The government may ban social media influencers and platforms spreading anti-national content after the Pahalgam attack. The IT Committee has demanded action reports from ministries by May 8 amid rising tensions and UN calls for restraint. Following the terror assault in Pahalgam on April 22, 2025, the Parliamentary Standing Committee on Information Technology has voiced grave concerns about the role of specific social media platforms and influencers. The committee pointed out that some of these organisations seem to be working against the nation’s interests and may be encouraging violence with their content. The committee has urged the Ministry of Electronics and Information Technology and the Ministry of Information and Broadcasting to act quickly and decisively in response to these findings. The Information Technology Act of 2000 and the Information Technology (Intermediary Guidelines and Digital Media Ethics Code) Rules of 2021 specifically seek information about the steps being considered to outlaw such platforms and accounts. Following the terror assault in Pahalgam on April 22, 2025, the Parliamentary Standing Committee on Information Technology has voiced grave concerns about the role of specific social media platforms and influencers. The committee has given the ministries until May 8, 2025, to provide a thorough report detailing the actions they have taken or plan to take to stop the spread of dangerous content. This action demonstrates the government’s will to prevent incitement and actions that could jeopardise national security from taking place on digital platforms. Section 69A of the IT Act, 2000, gives authorities the authority to ban or remove content that endangers public order, security, sovereignty, or goodwill with other countries. According to the 2021 IT Rules, platforms must designate grievance officers, remove illegal content as soon as possible, and apply due care in content management. Five extremists targeted visitors in the Baisaran Valley with the Pahalgam incident, which has greatly increased tensions in the area and drawn global criticism. Additionally, the attack has led to a rise in anti-Kashmiri and Islamophobic attitudes throughout India, with social media being a key platform for the spread of divisive messages. UN chief asks India, Pakistan to step back from the brink Concerned that India-Pakistan tensions were “at their highest in years,” UN Secretary-General António Guterres urged “maximum restraint and stepping back from the brink” on May 5, 2025. “Make no mistake: A military solution is no solution,” Guterres stated in a succinct declaration. Guterres offered both governments his “good offices” in the interest of peace. “The United Nations stands ready to support any initiative that promotes de-escalation, diplomacy, and a renewed commitment to peace,” he stated.

Madras University Cyber Forensics Course Marks 20 Years of Innovation

Madras University’s Cyber Forensics course, launched in 2004, has evolved into a postgraduate program producing over 750 graduates with strong industry placements. Recognized as a Centre of Excellence, it offers cutting-edge cybersecurity and digital forensics training. According to the previous department head and course founder-director R. Thilagaraj, the department developed a postgraduate diploma in cyber forensics and information security for police, courts, and business executives in 2004. Because of the positive reaction, it was changed to a postgraduate degree course the following year. Cybersecurity was still in its infancy. He remembers, “Some of the organizations we visited asked why they needed it.” When the first group graduated in 2007, employers were reluctant to hire them. According to S. Latha, the founder of the course and current director of the Centre for Cyber Forensics and Information Security, the first group of alumni is currently working for multinational banks. Up to 750 students have already received their diplomas. With a government grant of ₹1 crore, the centre was elevated as a Centre of Excellence in 2009, and she adds that it became an independent department with the then-Governor-Chancellor’s approval. The cost of tuition is ₹8,500. The course covers the most recent developments in the fields of digital forensics, information security audit, cyber criminology, and information security. Students have benefited from a course that the University of Madras‘ criminology department introduced 20 years ago. According to the previous department head and course founder-director R. Thilagaraj, the department developed a postgraduate diploma in cyber forensics and information security for police, courts, and business executives in 2004. Because of the positive reaction, it was changed to a postgraduate degree course the following year. Cybersecurity was still in its infancy. He remembers, “Some of the organisations we visited asked why they needed it.” When the first group graduated in 2007, employers were reluctant to hire them. According to Latha, the founder and coordinator of the course and current director of the Centre for Cyber Forensics and Information Security, the first group of graduates is currently working for multinational banks. Up to 750 students have already received their diplomas. With a government grant of ₹1 crore, the centre was elevated as a Centre of Excellence in 2009, and she adds that it became an independent department with the then-Governor-Chancellor’s approval. The cost of tuition is ₹8,500. The course covers the most recent developments in the fields of digital forensics, information security audit, cyber criminology, and information security. “Our alumni are placed in Google, Ernst and Young, Deloitte, HCL, Infosys, and even government agencies.” “The course offers 100% placement in corporate houses, software companies, information security auditing firms, banks, telecom industries, and financial institutions,” Ms. Latha explains. A cyber forensics lab has also been established by the department. Students conduct research in important fields of digital forensics and cybersecurity. As part of the RUSA Arumbu project, a student was recently given seed money to verify the legitimacy of AI-generated images, audio, and video. According to Ms. Latha, “a lot of students have worked in identifying ransomware attacks, phishing links, and fake profiles.” In addition to helping with placement, industry professionals who also teach classes created the syllabus. “The government should consider hiring at least a percentage of police with a master’s degree in cyber forensics and information security in the technical wing, as cybercrimes are on the rise and the majority of cases in the future are likely to be related to cybercrime,” she continues. Students who joined the program after graduating with a BCA, such as Vikram T, Farheen Fathima, and Mohamed Thalal, are now guaranteed a respectable compensation package for their campus placement. Every semester, the students work on a project, and the final dissertation they produce is based on actual business issues. According to guest faculty member C. Vishnupriya, having professionals from the industry on the team aids students in comprehending real-world issues. She adds, “They also value it when students solve problems.”

Held Hostage on WhatsApp: Cybercriminals Extort ₹56 Lakh from Retired Teacher

A retired teacher in Ghaziabad was digitally held hostage via WhatsApp for 28 days and extorted of ₹56 lakh by scammers posing as TRAI officials. Police have filed a case under cybercrime laws and frozen the linked bank accounts. Ghaziabad: Archana Khare, a former Vaishali teacher, endured a startling adventure when she was imprisoned online by cybercriminals for 28 days, from April 1 to April 28. Police said that the scammers pretended to be representatives of the Telecom Regulatory Authority of India (TRAI), accusing her of misusing her mobile number and threatening to disconnect her. Victim Forced to Transfer ₹56 Lakh in Fear Khare was forced to remain under constant surveillance using WhatsApp video chats every day from 9:30 AM to 5:30 or 6 PM while an inquiry was underway. This was especially true while her husband was gone at work. To clear her name, the thieves allegedly instructed her to go to KG Marg in Delhi and transfer funds from her savings, citing legal procedures. Over the 28 days, she was compelled to move ₹56 lakh to five separate domestic bank accounts. Now that these accounts have been located, the Ghaziabad police have taken steps to freeze them. Police Action under New Criminal Laws Following pertinent provisions of the Information Technology Act and the Bharatiya Nyaya Sanhita (BNS), a formal complaint was filed on May 1 at the Ghaziabad cybercrime police station. These consist of: Section 318: Infidelity Section 340(2): Electronic document forgery Section 204: Posing as a public official Extortion under Section 308(2) Crime-related intimidation, Section 351(4) Section 3(5): Shared purpose IT Act provisions for cyber fraud Ambuj Singh Yadav, ACP (Crime), emphasised the significance of public awareness while confirming that the inquiry is still underway.”A new kind of psychological coercion is digital arrest. “Timely reporting saved extra harm to the victim,” he stated. The Ghaziabad case serves as a terrifying reminder of how hackers are now using surveillance, impersonation, and fear as weapons to take advantage of victims. Verifying official communications and reporting suspicious calls to authorities right away are recommendations for citizens.

Tripura police freeze over 16,000 bank accounts linked to online fraud

Tripura Police have frozen over 16,000 bank accounts linked to online fraud, uncovering scams involving more than ₹26 crore. Plans are in place to establish a cybercrime police station in Agartala to strengthen future investigations. On May 02, 2025, officials declared that the Tripura Police’s cyber squad had blocked more than 16,000 bank accounts connected to online scams in a significant crackdown on cybercrime. It is suspected that over Rs 26 crore has been stolen in total through these cybercrimes. Via social media and messaging applications, criminals have been luring victims with lottery scams, phoney loan offers, and fictitious employment offers. Scammers frequently pretended to be bank employees to trick senior citizens. Blackmailing online has also increased. According to a police source, criminals frequently use video chats and altered recordings to extort money from lonely people. Between April 2024 and April 2025, 4,283 complaints were submitted through the National Cybercrime Reporting Portal. Police seized accounts worth Rs 3.38 crore and recovered Rs 25.77 lakh. Plans are underway to construct a dedicated cybercrime police station in Agartala, complete with skilled officers and cutting-edge equipment to better handle these types of crimes.

Pinterest is at last taking something to combat its AI infestation

Pinterest has introduced new tools to label and filter AI-generated images, helping users distinguish synthetic content and reduce its visibility. The platform will use metadata and AI classifiers to detect altered images, with features like “AI modified” tags and user controls to limit such content. On its site, Pinterest is helping users recognize and steer clear of AI-generated slop. To help customers avoid seeing too many images while searching for related topics, the business is introducing new capabilities that will automatically classify images that are identified as being created or altered using generative AI. “As our users encounter AI-generated content on Pinterest, we are helping them make better choices about what they see,” said Chief Technology Officer Matt Madrigal. “We are consciously tackling this new terrain in a way that is advantageous to all users on Pinterest, and Gen AI content on Pinterest ought to improve users’ capacity to find and act on their inspiration.” Global rollout of Pinterest new Gen AI labelling feature should help shield users from fraud. When a pin is clicked on in close-up, the labels will show up as a “AI modified” stamp in the lower left-hand corner. Pinterest uses metadata analysis, most likely for invisible marks like Adobe’s Content Credentials or Google’s Synthid, to determine whether an image was created or altered using artificial intelligence. Additionally, Pinterest claims to have created “classifiers that automatically detect gen AI content,” even in cases where an image lacks metadata markers. Although detection-based AI flaggers are not always accurate, Pinterest is now enabling users to file an appeal if they think their pins have been incorrectly labelled. It would be an understatement to say I’m overjoyed. The dominance of AI photos on Pinterest has drawn a lot of criticism from users, who find it hard to use the mood board builder for anything useful other than putting together pictures for aesthetic reasons. For instance, it might be difficult for artists to locate reliable real-world reference materials, and, likely, the apparel, accessories, or furnishings items seen in pins aren’t available for purchase because they don’t exist. Even as a source of “inspiration,” that can be problematic because artificial intelligence (AI) can produce incredibly realistic-looking hairstyles and interior design concepts that may be impossible to accomplish in real life. Additionally, an experimental tool will be released “soon” that will let users filter out specific AI photos for categories like beauty and art that are “prone to AI modification or generation,” according to Pinterest. The three-dot menu located at the bottom right of a pin will have the option to “see fewer.” Although it’s unknown how much AI the feature will filter out, Pinterest claims that this will alert its systems to promote less of such content and will eventually spread to more pin categories. I can only hope that an “all of it” option will be added later.

Fake Emails IDs Defaming CSD and Armed Forces Trigger Cyber Probe in Mumbai

Mumbai Cyber Police have launched a probe after fake email IDS were used to defame CSD officials and the Indian Armed Forces with false corruption claims. A case has been registered under the IT Act and BNS following a complaint from a senior CSD official. Mumbai: A senior official from the Ministry of Defence’s Canteen Stores Department (CSD) has reported an anonymous person to the police for allegedly sending derogatory texts and creating fictitious email IDS against government officials and the Indian Armed Forces. The accused sent many emails under the alias of Sukesh Kumar Hegde between April 8, 2024, and April 16, 2025, according to a complaint submitted by Rahul Janeshwar Bhosale (39), Assistant General Manager (Legal & Vigilance) at CSD, Church Gate. These emails, which were sent from fictitious addresses and included unfounded accusations of Corrupt practice against senior CSD (Canteen Stores Department) personnel, included: corruption_whitepaper2025@pm.mecorruption_whitepaper2024@proton.meexpose_corruption2024@protonmail.comtarget_corruption2024@proton.me The slanderous emails were sent to official CSD accounts such as gm@csdindia.gov.in, jgm1@csdindia.gov.in, jgm2@csdindia.gov.in, and others. The emails reportedly contained confidential departmental information. Additionally, the sender made up an address at Sport View, Palam, New Delhi’s Ulan Batar Rao Tula Ram Marg, which is part of the Ministry of Defence complex. After confirmation, it was discovered that Sukesh Kumar Hegde was not working at the address. Bhosale claimed that by fabricating an identity and presenting false internal data and charges, these emails not only sought to deceive but also to damage the organization. The emails’ header information has been sent over to the cyber police for review. According to Section 66(C) of the IT Act and Section 319(2) of the Bharatiya Nyaya Sanhita (BNS), the South Region Cyber Police Station has responded to the complaint by bringing a case against an anonymous individual for impersonation, defamation, and disseminating false information via a phony email address. The person responsible for the phoney accounts is being tracked down through additional inquiry.

Tackling cyber frauds: Finance Ministry includes I4C under the Prevention of Money Laundering Act for information sharing

The Finance Ministry has empowered I4C to share information under the PMLA (Prevention of Money Laundering Act), enhancing coordination with the Enforcement Directorate to combat cyber fraud. This move aims to trace money trails and crack down on rising transnational cyber scams targeting citizens. According to the anti-money laundering law, the government has given the Indian Cyber Crime Coordination Centre (I4C) permission to communicate with the Enforcement Directorate and receive information to identify money trails and stop cyber scams. The Home Ministry created I4C to serve as the primary hub for reducing cybercrime in the nation. I4C seeks to strengthen collaboration between various law enforcement agencies and stakeholders to increase India’s overall ability to tackle cybercrime. In compliance with Section 66 of the Prevention of Money Laundering Act (PMLA), the Finance Ministry’s Revenue Department added I4C in a notification dated April 25. As a result, I4C was able to communicate with the Enforcement Directorate (ED) and other law enforcement organisations more easily. This information sharing would help identify the masterminds behind the international cyber frauds that target the general public and are becoming more and more common. Phishing websites, false social media identities, and sponsored search engine advertisements are all being used in these types of online scams. These con artists also send an OTP or a webpage link to a victim’s email or phone. The victim’s phone or computer is compromised when they share the OTP or click on the link. The government has requested that individuals use the National Cybercrime Reporting Portal at cybercrime.gov.in or call 1930 in the event of fraud to report such websites.

Rajasthan Education Department Website Hacked by Alleged ‘Pakistan Cyber Force

The Rajasthan Education Department’s website was hacked on April 29, 2025, displaying provocative messages allegedly from the “Pakistan Cyber Force.” Authorities have launched an investigation, while experts call for urgent cybersecurity reforms amid rising attacks on government digital assets. JAIPUR: On 29 April 2025, a cyberattack targeting the Rajasthan Education Department’s official webpage changed the homepage to show some divisive messages posing as the “Pakistan Cyber Force.” In one of the letters, the Pahalgam terror attack was described as an “inside job,” meaning it was orchestrated from within. Another person called the incident a “false flag by the Indian government, designed to incite conflict and religious division.” Additionally, the hackers made derogatory remarks on Himanshi Narwal, the late Lieutenant Vinay Narwal’s widow, whose picture sitting next to her husband’s body was recently widely shared on social media. Shortly after the breach was discovered, the department’s website was removed. In reaction to the cyberattack, Education Minister Madan Dilawar declared, “The Education Department’s IT wing has been activated.” The website has been taken down for the time being, and recovery work is moving quickly. We have also reported the incident to cybersecurity agencies. To determine the group behind the cyber attack and the degree of the damage, an enquiry has been started. “At this time, there is no proof that any private information has been disclosed. To guarantee the security and integrity of our data, a thorough audit of every system is being carried out,” he continued. Experts Demand Immediate Reforms in Cybersecurity The persistent exploitation of government digital assets has sparked concerns from cyber specialists. They estimate that fraudsters have taken over more than 20 lakh pages connected to state departments nationwide. It is estimated that more than 8 lakh of these pages—including some from the Home Department and district-level police units—have been hacked in Rajasthan alone. Experts emphasise the urgent need for strong digital security frameworks and improved monitoring to safeguard government web infrastructure in light of the growing sophistication and frequency of cyberattacks.